Add `/vuln_explain` quick action to GitLab Duo Chat
Proposal
If a user is on a vulnerability record, a specific vulnerability finding the merge request, or vulnerability finding on the security tab on a pipeline, and they open GitLab Duo Chat, they can use the /vuln_explain
quick action. This quick action explains a vulnerability using the following prompt:
You are a software vulnerability developer.
Explain the vulnerability "`identifier`".
The file "`filename`" has this vulnerable code:
`code`
Provide a code example with syntax highlighting on how an attacker can take advantage of the vulnerability.
Provide a code example with syntax highlighting on how to fix it.
Provide the response in markdown format with headers.
Additional requirements
- The quick action includes auto-complete
- The quick action is not available if the user isn't on a vulnerability related page
Edited by Alana Bellucci